Discussions
Categories
- 196.7K All Categories
- 2.2K Data
- 235 Big Data Appliance
- 1.9K Data Science
- 449.8K Databases
- 221.5K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 31 Multilingual Engine
- 549 MySQL Community Space
- 477 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3K ORDS, SODA & JSON in the Database
- 532 SQLcl
- 4K SQL Developer Data Modeler
- 186.8K SQL & PL/SQL
- 21.2K SQL Developer
- 295.4K Development
- 17 Developer Projects
- 138 Programming Languages
- 292.1K Development Tools
- 104 DevOps
- 3.1K QA/Testing
- 645.9K Java
- 27 Java Learning Subscription
- 37K Database Connectivity
- 153 Java Community Process
- 105 Java 25
- 22.1K Java APIs
- 138.1K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 17 Java Essentials
- 158 Java 8 Questions
- 85.9K Java Programming
- 79 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.2K Java SE
- 13.8K Java Security
- 203 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 392 LiveLabs
- 37 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.6K Other Languages
- 2.3K Chinese
- 170 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 230 Portuguese
SQLcl 22.1 CodeScan -more info please
I just got a news article (by @thatJeffSmith-Oracle ) announcing SQLcl v22.1 and some of its new features.
The most interesting one (to me) is the CodeScan feature.
I believe I had mentioned my desire to have the "custom highlighting" feature enhanced for such "code sniffing" capabilities.
With that: Thank You for adding this feature.
(image from email)
I'm assuming the blog on this feature is "coming soon".
I have some questions regarding this feature that might not show up in the blog:
- Which "_slow=true" programming styles are detected?
- Can we modify that list?
- turn certain checks on/off
- create our own
- Will this feature be ported to SQL Developer?
- 10g CBO converts (certain) loops into Bulk Collect-FORALL. Is there a way for the engine to suggest the same? (eg here is some potentially "_slow=true" code, here is a suggested improved version - but this may be a better feature for SQL Developer)
oh ..
- link to the blog?
thanks,
MK
Best Answer
-
It's all or nothing with that switch.
Yes, it will be available in SQL Developer for next update, just like we already have the SQL Injection Detection code there.
You can find the rules we are using here
Answers
-
It's all or nothing with that switch.
Yes, it will be available in SQL Developer for next update, just like we already have the SQL Injection Detection code there.
You can find the rules we are using here
-
https://community.oracle.com/tech/developers/discussion/4496920/sqlcl-22-1-codescan-more-info-please
This statement is true only for a unique key on book_languages.language.
-
Data Security Predicates Wrapped Inside Redundant Sub-Query
How does this relate to and VPD/RLS/RAS?
SPEAKING OF RAS ...
I see the chapter "PGQL Plug-in for SQLcl" in that Document.
Can we get a plug-in for RAS objects? (Security Classes, ACLs, Policies, etc)
I've written a Proof-of-Concept ("RAS-SQL to PL/SQL") code that works for some cases.
I'm finding it easier to describe my objects/review security policies this way.
